| 1234567891011121314151617181920212223242526272829303132 |
- lxc.tty = 4
- lxc.pts = 1024
- lxc.rootfs = ROOTFS
- lxc.arch = ARCH
- lxc.cgroup.devices.deny = a
- # /dev/null and zero
- lxc.cgroup.devices.allow = c 1:3 rwm
- lxc.cgroup.devices.allow = c 1:5 rwm
- # consoles
- lxc.cgroup.devices.allow = c 5:1 rwm
- lxc.cgroup.devices.allow = c 5:0 rwm
- lxc.cgroup.devices.allow = c 4:0 rwm
- lxc.cgroup.devices.allow = c 4:1 rwm
- # /dev/{,u}random
- lxc.cgroup.devices.allow = c 1:9 rwm
- lxc.cgroup.devices.allow = c 1:8 rwm
- lxc.cgroup.devices.allow = c 136:* rwm
- lxc.cgroup.devices.allow = c 5:2 rwm
- # rtc
- lxc.cgroup.devices.allow = c 254:0 rwm
-
- # mounts points
- lxc.mount.entry=proc ROOTFS/proc proc nodev,noexec,nosuid 0 0
- lxc.mount.entry=sysfs ROOTFS/sys sysfs defaults 0 0
-
- # Container with network virtualized using a pre-configured bridge named br0 and
- # veth pair virtual network devices
- # On the host, run: ifconfig br0 up 10.0.2.2
- lxc.network.type = veth
- lxc.network.flags = up
- lxc.network.link = br0
- lxc.network.ipv4 = 10.0.2.5/24
|
